/src/openssl/crypto/err/err.c
Line | Count | Source (jump to first uncovered line) |
1 | | /* |
2 | | * Copyright 1995-2018 The OpenSSL Project Authors. All Rights Reserved. |
3 | | * |
4 | | * Licensed under the Apache License 2.0 (the "License"). You may not use |
5 | | * this file except in compliance with the License. You can obtain a copy |
6 | | * in the file LICENSE in the source distribution or at |
7 | | * https://www.openssl.org/source/license.html |
8 | | */ |
9 | | |
10 | | /* TODO: When ERR_STATE becomes opaque, this musts be removed */ |
11 | | #define OSSL_FORCE_ERR_STATE |
12 | | |
13 | | #include <stdio.h> |
14 | | #include <stdarg.h> |
15 | | #include <string.h> |
16 | | #include "crypto/cryptlib.h" |
17 | | #include "internal/err.h" |
18 | | #include "crypto/err.h" |
19 | | #include <openssl/err.h> |
20 | | #include <openssl/crypto.h> |
21 | | #include <openssl/buffer.h> |
22 | | #include <openssl/bio.h> |
23 | | #include <openssl/opensslconf.h> |
24 | | #include "internal/thread_once.h" |
25 | | #include "crypto/ctype.h" |
26 | | #include "internal/constant_time.h" |
27 | | #include "e_os.h" |
28 | | #include "err_local.h" |
29 | | |
30 | | /* Forward declaration in case it's not published because of configuration */ |
31 | | ERR_STATE *ERR_get_state(void); |
32 | | |
33 | | static int err_load_strings(const ERR_STRING_DATA *str); |
34 | | |
35 | | static void ERR_STATE_free(ERR_STATE *s); |
36 | | #ifndef OPENSSL_NO_ERR |
37 | | static ERR_STRING_DATA ERR_str_libraries[] = { |
38 | | {ERR_PACK(ERR_LIB_NONE, 0, 0), "unknown library"}, |
39 | | {ERR_PACK(ERR_LIB_SYS, 0, 0), "system library"}, |
40 | | {ERR_PACK(ERR_LIB_BN, 0, 0), "bignum routines"}, |
41 | | {ERR_PACK(ERR_LIB_RSA, 0, 0), "rsa routines"}, |
42 | | {ERR_PACK(ERR_LIB_DH, 0, 0), "Diffie-Hellman routines"}, |
43 | | {ERR_PACK(ERR_LIB_EVP, 0, 0), "digital envelope routines"}, |
44 | | {ERR_PACK(ERR_LIB_BUF, 0, 0), "memory buffer routines"}, |
45 | | {ERR_PACK(ERR_LIB_OBJ, 0, 0), "object identifier routines"}, |
46 | | {ERR_PACK(ERR_LIB_PEM, 0, 0), "PEM routines"}, |
47 | | {ERR_PACK(ERR_LIB_DSA, 0, 0), "dsa routines"}, |
48 | | {ERR_PACK(ERR_LIB_X509, 0, 0), "x509 certificate routines"}, |
49 | | {ERR_PACK(ERR_LIB_ASN1, 0, 0), "asn1 encoding routines"}, |
50 | | {ERR_PACK(ERR_LIB_CONF, 0, 0), "configuration file routines"}, |
51 | | {ERR_PACK(ERR_LIB_CRYPTO, 0, 0), "common libcrypto routines"}, |
52 | | {ERR_PACK(ERR_LIB_EC, 0, 0), "elliptic curve routines"}, |
53 | | {ERR_PACK(ERR_LIB_ECDSA, 0, 0), "ECDSA routines"}, |
54 | | {ERR_PACK(ERR_LIB_ECDH, 0, 0), "ECDH routines"}, |
55 | | {ERR_PACK(ERR_LIB_SSL, 0, 0), "SSL routines"}, |
56 | | {ERR_PACK(ERR_LIB_BIO, 0, 0), "BIO routines"}, |
57 | | {ERR_PACK(ERR_LIB_PKCS7, 0, 0), "PKCS7 routines"}, |
58 | | {ERR_PACK(ERR_LIB_X509V3, 0, 0), "X509 V3 routines"}, |
59 | | {ERR_PACK(ERR_LIB_PKCS12, 0, 0), "PKCS12 routines"}, |
60 | | {ERR_PACK(ERR_LIB_RAND, 0, 0), "random number generator"}, |
61 | | {ERR_PACK(ERR_LIB_DSO, 0, 0), "DSO support routines"}, |
62 | | {ERR_PACK(ERR_LIB_TS, 0, 0), "time stamp routines"}, |
63 | | {ERR_PACK(ERR_LIB_ENGINE, 0, 0), "engine routines"}, |
64 | | {ERR_PACK(ERR_LIB_OCSP, 0, 0), "OCSP routines"}, |
65 | | {ERR_PACK(ERR_LIB_UI, 0, 0), "UI routines"}, |
66 | | {ERR_PACK(ERR_LIB_FIPS, 0, 0), "FIPS routines"}, |
67 | | {ERR_PACK(ERR_LIB_CMS, 0, 0), "CMS routines"}, |
68 | | {ERR_PACK(ERR_LIB_CRMF, 0, 0), "CRMF routines"}, |
69 | | {ERR_PACK(ERR_LIB_CMP, 0, 0), "CMP routines"}, |
70 | | {ERR_PACK(ERR_LIB_HMAC, 0, 0), "HMAC routines"}, |
71 | | {ERR_PACK(ERR_LIB_CT, 0, 0), "CT routines"}, |
72 | | {ERR_PACK(ERR_LIB_ASYNC, 0, 0), "ASYNC routines"}, |
73 | | {ERR_PACK(ERR_LIB_KDF, 0, 0), "KDF routines"}, |
74 | | {ERR_PACK(ERR_LIB_OSSL_STORE, 0, 0), "STORE routines"}, |
75 | | {ERR_PACK(ERR_LIB_SM2, 0, 0), "SM2 routines"}, |
76 | | {ERR_PACK(ERR_LIB_ESS, 0, 0), "ESS routines"}, |
77 | | {ERR_PACK(ERR_LIB_PROV, 0, 0), "Provider routines"}, |
78 | | {ERR_PACK(ERR_LIB_OSSL_SERIALIZER, 0, 0), "SERIALIZER routines"}, |
79 | | {0, NULL}, |
80 | | }; |
81 | | |
82 | | static ERR_STRING_DATA ERR_str_reasons[] = { |
83 | | {ERR_R_SYS_LIB, "system lib"}, |
84 | | {ERR_R_BN_LIB, "BN lib"}, |
85 | | {ERR_R_RSA_LIB, "RSA lib"}, |
86 | | {ERR_R_DH_LIB, "DH lib"}, |
87 | | {ERR_R_EVP_LIB, "EVP lib"}, |
88 | | {ERR_R_BUF_LIB, "BUF lib"}, |
89 | | {ERR_R_OBJ_LIB, "OBJ lib"}, |
90 | | {ERR_R_PEM_LIB, "PEM lib"}, |
91 | | {ERR_R_DSA_LIB, "DSA lib"}, |
92 | | {ERR_R_X509_LIB, "X509 lib"}, |
93 | | {ERR_R_ASN1_LIB, "ASN1 lib"}, |
94 | | {ERR_R_EC_LIB, "EC lib"}, |
95 | | {ERR_R_BIO_LIB, "BIO lib"}, |
96 | | {ERR_R_PKCS7_LIB, "PKCS7 lib"}, |
97 | | {ERR_R_X509V3_LIB, "X509V3 lib"}, |
98 | | {ERR_R_ENGINE_LIB, "ENGINE lib"}, |
99 | | {ERR_R_UI_LIB, "UI lib"}, |
100 | | {ERR_R_OSSL_STORE_LIB, "STORE lib"}, |
101 | | {ERR_R_ECDSA_LIB, "ECDSA lib"}, |
102 | | |
103 | | {ERR_R_NESTED_ASN1_ERROR, "nested asn1 error"}, |
104 | | {ERR_R_MISSING_ASN1_EOS, "missing asn1 eos"}, |
105 | | |
106 | | {ERR_R_FATAL, "fatal"}, |
107 | | {ERR_R_MALLOC_FAILURE, "malloc failure"}, |
108 | | {ERR_R_SHOULD_NOT_HAVE_BEEN_CALLED, |
109 | | "called a function you should not call"}, |
110 | | {ERR_R_PASSED_NULL_PARAMETER, "passed a null parameter"}, |
111 | | {ERR_R_INTERNAL_ERROR, "internal error"}, |
112 | | {ERR_R_DISABLED, "called a function that was disabled at compile-time"}, |
113 | | {ERR_R_INIT_FAIL, "init fail"}, |
114 | | {ERR_R_OPERATION_FAIL, "operation fail"}, |
115 | | {ERR_R_INVALID_PROVIDER_FUNCTIONS, "invalid provider functions"}, |
116 | | {ERR_R_INTERRUPTED_OR_CANCELLED, "interrupted or cancelled"}, |
117 | | |
118 | | {0, NULL}, |
119 | | }; |
120 | | #endif |
121 | | |
122 | | static CRYPTO_ONCE err_init = CRYPTO_ONCE_STATIC_INIT; |
123 | | static int set_err_thread_local; |
124 | | static CRYPTO_THREAD_LOCAL err_thread_local; |
125 | | |
126 | | static CRYPTO_ONCE err_string_init = CRYPTO_ONCE_STATIC_INIT; |
127 | | static CRYPTO_RWLOCK *err_string_lock; |
128 | | |
129 | | static ERR_STRING_DATA *int_err_get_item(const ERR_STRING_DATA *); |
130 | | |
131 | | /* |
132 | | * The internal state |
133 | | */ |
134 | | |
135 | | static LHASH_OF(ERR_STRING_DATA) *int_error_hash = NULL; |
136 | | static int int_err_library_number = ERR_LIB_USER; |
137 | | |
138 | | typedef enum ERR_GET_ACTION_e { |
139 | | EV_POP, EV_PEEK, EV_PEEK_LAST |
140 | | } ERR_GET_ACTION; |
141 | | |
142 | | static unsigned long get_error_values(ERR_GET_ACTION g, |
143 | | const char **file, int *line, |
144 | | const char **func, const char **data, |
145 | | int *flags); |
146 | | |
147 | | static unsigned long err_string_data_hash(const ERR_STRING_DATA *a) |
148 | 10.3M | { |
149 | 10.3M | unsigned long ret, l; |
150 | | |
151 | 10.3M | l = a->error; |
152 | 10.3M | ret = l ^ ERR_GET_LIB(l); |
153 | 10.3M | return (ret ^ ret % 19 * 13); |
154 | 10.3M | } |
155 | | |
156 | | static int err_string_data_cmp(const ERR_STRING_DATA *a, |
157 | | const ERR_STRING_DATA *b) |
158 | 7.03M | { |
159 | 7.03M | if (a->error == b->error) |
160 | 6.62M | return 0; |
161 | 414k | return a->error > b->error ? 1 : -1; |
162 | 7.03M | } |
163 | | |
164 | | static ERR_STRING_DATA *int_err_get_item(const ERR_STRING_DATA *d) |
165 | 347k | { |
166 | 347k | ERR_STRING_DATA *p = NULL; |
167 | | |
168 | 347k | CRYPTO_THREAD_read_lock(err_string_lock); |
169 | 347k | p = lh_ERR_STRING_DATA_retrieve(int_error_hash, d); |
170 | 347k | CRYPTO_THREAD_unlock(err_string_lock); |
171 | | |
172 | 347k | return p; |
173 | 347k | } |
174 | | |
175 | | #ifndef OPENSSL_NO_ERR |
176 | | /* 2019-05-21: Russian and Ukrainian locales on Linux require more than 6,5 kB */ |
177 | | # define SPACE_SYS_STR_REASONS 8 * 1024 |
178 | 348k | # define NUM_SYS_STR_REASONS 127 |
179 | | |
180 | | static ERR_STRING_DATA SYS_str_reasons[NUM_SYS_STR_REASONS + 1]; |
181 | | /* |
182 | | * SYS_str_reasons is filled with copies of strerror() results at |
183 | | * initialization. 'errno' values up to 127 should cover all usual errors, |
184 | | * others will be displayed numerically by ERR_error_string. It is crucial |
185 | | * that we have something for each reason code that occurs in |
186 | | * ERR_str_reasons, or bogus reason strings will be returned for SYSerr(), |
187 | | * which always gets an errno value and never one of those 'standard' reason |
188 | | * codes. |
189 | | */ |
190 | | |
191 | | static void build_SYS_str_reasons(void) |
192 | 92.5k | { |
193 | | /* OPENSSL_malloc cannot be used here, use static storage instead */ |
194 | 92.5k | static char strerror_pool[SPACE_SYS_STR_REASONS]; |
195 | 92.5k | char *cur = strerror_pool; |
196 | 92.5k | size_t cnt = 0; |
197 | 92.5k | static int init = 1; |
198 | 92.5k | int i; |
199 | 92.5k | int saveerrno = get_last_sys_error(); |
200 | | |
201 | 92.5k | CRYPTO_THREAD_write_lock(err_string_lock); |
202 | 92.5k | if (!init) { |
203 | 89.8k | CRYPTO_THREAD_unlock(err_string_lock); |
204 | 89.8k | return; |
205 | 89.8k | } |
206 | | |
207 | 348k | for (i = 1; i <= NUM_SYS_STR_REASONS; i++) { |
208 | 345k | ERR_STRING_DATA *str = &SYS_str_reasons[i - 1]; |
209 | | |
210 | 345k | str->error = ERR_PACK(ERR_LIB_SYS, 0, i); |
211 | | /* |
212 | | * If we have used up all the space in strerror_pool, |
213 | | * there's no point in calling openssl_strerror_r() |
214 | | */ |
215 | 345k | if (str->string == NULL && cnt < sizeof(strerror_pool)) { |
216 | 345k | if (openssl_strerror_r(i, cur, sizeof(strerror_pool) - cnt)) { |
217 | 340k | size_t l = strlen(cur); |
218 | | |
219 | 340k | str->string = cur; |
220 | 340k | cnt += l; |
221 | 340k | cur += l; |
222 | | |
223 | | /* |
224 | | * VMS has an unusual quirk of adding spaces at the end of |
225 | | * some (most? all?) messages. Lets trim them off. |
226 | | */ |
227 | 340k | while (cur > strerror_pool && ossl_isspace(cur[-1])) { |
228 | 0 | cur--; |
229 | 0 | cnt--; |
230 | 0 | } |
231 | 340k | *cur++ = '\0'; |
232 | 340k | cnt++; |
233 | 340k | } |
234 | 345k | } |
235 | 345k | if (str->string == NULL) |
236 | 5.44k | str->string = "unknown"; |
237 | 345k | } |
238 | | |
239 | | /* |
240 | | * Now we still have SYS_str_reasons[NUM_SYS_STR_REASONS] = {0, NULL}, as |
241 | | * required by ERR_load_strings. |
242 | | */ |
243 | | |
244 | 2.72k | init = 0; |
245 | | |
246 | 2.72k | CRYPTO_THREAD_unlock(err_string_lock); |
247 | | /* openssl_strerror_r could change errno, but we want to preserve it */ |
248 | 2.72k | set_sys_error(saveerrno); |
249 | 2.72k | err_load_strings(SYS_str_reasons); |
250 | 2.72k | } |
251 | | #endif |
252 | | |
253 | | static void ERR_STATE_free(ERR_STATE *s) |
254 | 1.36k | { |
255 | 1.36k | int i; |
256 | | |
257 | 1.36k | if (s == NULL) |
258 | 0 | return; |
259 | 23.2k | for (i = 0; i < ERR_NUM_ERRORS; i++) { |
260 | 21.9k | err_clear_data(s, i, 1); |
261 | 21.9k | } |
262 | 1.36k | OPENSSL_free(s); |
263 | 1.36k | } |
264 | | |
265 | | DEFINE_RUN_ONCE_STATIC(do_err_strings_init) |
266 | 2.72k | { |
267 | 2.72k | if (!OPENSSL_init_crypto(0, NULL)) |
268 | 0 | return 0; |
269 | 2.72k | err_string_lock = CRYPTO_THREAD_lock_new(); |
270 | 2.72k | if (err_string_lock == NULL) |
271 | 0 | return 0; |
272 | 2.72k | int_error_hash = lh_ERR_STRING_DATA_new(err_string_data_hash, |
273 | 2.72k | err_string_data_cmp); |
274 | 2.72k | if (int_error_hash == NULL) { |
275 | 0 | CRYPTO_THREAD_lock_free(err_string_lock); |
276 | 0 | err_string_lock = NULL; |
277 | 0 | return 0; |
278 | 0 | } |
279 | 2.72k | return 1; |
280 | 2.72k | } |
281 | | |
282 | | void err_cleanup(void) |
283 | 1.36k | { |
284 | 1.36k | if (set_err_thread_local != 0) |
285 | 1.36k | CRYPTO_THREAD_cleanup_local(&err_thread_local); |
286 | 1.36k | CRYPTO_THREAD_lock_free(err_string_lock); |
287 | 1.36k | err_string_lock = NULL; |
288 | 1.36k | lh_ERR_STRING_DATA_free(int_error_hash); |
289 | 1.36k | int_error_hash = NULL; |
290 | 1.36k | } |
291 | | |
292 | | /* |
293 | | * Legacy; pack in the library. |
294 | | */ |
295 | | static void err_patch(int lib, ERR_STRING_DATA *str) |
296 | 0 | { |
297 | 0 | unsigned long plib = ERR_PACK(lib, 0, 0); |
298 | |
|
299 | 0 | for (; str->error != 0; str++) |
300 | 0 | str->error |= plib; |
301 | 0 | } |
302 | | |
303 | | /* |
304 | | * Hash in |str| error strings. Assumes the URN_ONCE was done. |
305 | | */ |
306 | | static int err_load_strings(const ERR_STRING_DATA *str) |
307 | 277k | { |
308 | 277k | CRYPTO_THREAD_write_lock(err_string_lock); |
309 | 10.3M | for (; str->error; str++) |
310 | 10.0M | (void)lh_ERR_STRING_DATA_insert(int_error_hash, |
311 | 10.0M | (ERR_STRING_DATA *)str); |
312 | 277k | CRYPTO_THREAD_unlock(err_string_lock); |
313 | 277k | return 1; |
314 | 277k | } |
315 | | |
316 | | int ERR_load_ERR_strings(void) |
317 | 92.5k | { |
318 | 92.5k | #ifndef OPENSSL_NO_ERR |
319 | 92.5k | if (!RUN_ONCE(&err_string_init, do_err_strings_init)) |
320 | 0 | return 0; |
321 | | |
322 | 92.5k | err_load_strings(ERR_str_libraries); |
323 | 92.5k | err_load_strings(ERR_str_reasons); |
324 | 92.5k | build_SYS_str_reasons(); |
325 | 92.5k | #endif |
326 | 92.5k | return 1; |
327 | 92.5k | } |
328 | | |
329 | | int ERR_load_strings(int lib, ERR_STRING_DATA *str) |
330 | 0 | { |
331 | 0 | if (ERR_load_ERR_strings() == 0) |
332 | 0 | return 0; |
333 | | |
334 | 0 | err_patch(lib, str); |
335 | 0 | err_load_strings(str); |
336 | 0 | return 1; |
337 | 0 | } |
338 | | |
339 | | int ERR_load_strings_const(const ERR_STRING_DATA *str) |
340 | 89.8k | { |
341 | 89.8k | if (ERR_load_ERR_strings() == 0) |
342 | 0 | return 0; |
343 | 89.8k | err_load_strings(str); |
344 | 89.8k | return 1; |
345 | 89.8k | } |
346 | | |
347 | | int ERR_unload_strings(int lib, ERR_STRING_DATA *str) |
348 | 0 | { |
349 | 0 | if (!RUN_ONCE(&err_string_init, do_err_strings_init)) |
350 | 0 | return 0; |
351 | | |
352 | 0 | CRYPTO_THREAD_write_lock(err_string_lock); |
353 | | /* |
354 | | * We don't need to ERR_PACK the lib, since that was done (to |
355 | | * the table) when it was loaded. |
356 | | */ |
357 | 0 | for (; str->error; str++) |
358 | 0 | (void)lh_ERR_STRING_DATA_delete(int_error_hash, str); |
359 | 0 | CRYPTO_THREAD_unlock(err_string_lock); |
360 | |
|
361 | 0 | return 1; |
362 | 0 | } |
363 | | |
364 | | void err_free_strings_int(void) |
365 | 1.36k | { |
366 | 1.36k | if (!RUN_ONCE(&err_string_init, do_err_strings_init)) |
367 | 0 | return; |
368 | 1.36k | } |
369 | | |
370 | | /********************************************************/ |
371 | | |
372 | | void ERR_clear_error(void) |
373 | 66.9k | { |
374 | 66.9k | int i; |
375 | 66.9k | ERR_STATE *es; |
376 | | |
377 | 66.9k | es = err_get_state_int(); |
378 | 66.9k | if (es == NULL) |
379 | 0 | return; |
380 | | |
381 | 1.13M | for (i = 0; i < ERR_NUM_ERRORS; i++) { |
382 | 1.07M | err_clear(es, i, 0); |
383 | 1.07M | } |
384 | 66.9k | es->top = es->bottom = 0; |
385 | 66.9k | } |
386 | | |
387 | | unsigned long ERR_get_error(void) |
388 | 0 | { |
389 | 0 | return get_error_values(EV_POP, NULL, NULL, NULL, NULL, NULL); |
390 | 0 | } |
391 | | |
392 | | unsigned long ERR_get_error_line(const char **file, int *line) |
393 | 0 | { |
394 | 0 | return get_error_values(EV_POP, file, line, NULL, NULL, NULL); |
395 | 0 | } |
396 | | |
397 | | unsigned long ERR_get_error_func(const char **func) |
398 | 0 | { |
399 | 0 | return get_error_values(EV_POP, NULL, NULL, func, NULL, NULL); |
400 | 0 | } |
401 | | |
402 | | unsigned long ERR_get_error_data(const char **data, int *flags) |
403 | 0 | { |
404 | 0 | return get_error_values(EV_POP, NULL, NULL, NULL, data, flags); |
405 | 0 | } |
406 | | |
407 | | unsigned long ERR_get_error_all(const char **file, int *line, |
408 | | const char **func, |
409 | | const char **data, int *flags) |
410 | 96.7k | { |
411 | 96.7k | return get_error_values(EV_POP, file, line, func, data, flags); |
412 | 96.7k | } |
413 | | |
414 | | #ifndef OPENSSL_NO_DEPRECATED_3_0 |
415 | | unsigned long ERR_get_error_line_data(const char **file, int *line, |
416 | | const char **data, int *flags) |
417 | 0 | { |
418 | 0 | return get_error_values(EV_POP, file, line, NULL, data, flags); |
419 | 0 | } |
420 | | #endif |
421 | | |
422 | | unsigned long ERR_peek_error(void) |
423 | 0 | { |
424 | 0 | return get_error_values(EV_PEEK, NULL, NULL, NULL, NULL, NULL); |
425 | 0 | } |
426 | | |
427 | | unsigned long ERR_peek_error_line(const char **file, int *line) |
428 | 0 | { |
429 | 0 | return get_error_values(EV_PEEK, file, line, NULL, NULL, NULL); |
430 | 0 | } |
431 | | |
432 | | unsigned long ERR_peek_error_func(const char **func) |
433 | 0 | { |
434 | 0 | return get_error_values(EV_PEEK, NULL, NULL, func, NULL, NULL); |
435 | 0 | } |
436 | | |
437 | | unsigned long ERR_peek_error_data(const char **data, int *flags) |
438 | 0 | { |
439 | 0 | return get_error_values(EV_PEEK, NULL, NULL, NULL, data, flags); |
440 | 0 | } |
441 | | |
442 | | unsigned long ERR_peek_error_all(const char **file, int *line, |
443 | | const char **func, |
444 | | const char **data, int *flags) |
445 | 0 | { |
446 | 0 | return get_error_values(EV_PEEK, file, line, func, data, flags); |
447 | 0 | } |
448 | | |
449 | | #ifndef OPENSSL_NO_DEPRECATED_3_0 |
450 | | unsigned long ERR_peek_error_line_data(const char **file, int *line, |
451 | | const char **data, int *flags) |
452 | 0 | { |
453 | 0 | return get_error_values(EV_PEEK, file, line, NULL, data, flags); |
454 | 0 | } |
455 | | #endif |
456 | | |
457 | | unsigned long ERR_peek_last_error(void) |
458 | 4.32k | { |
459 | 4.32k | return get_error_values(EV_PEEK_LAST, NULL, NULL, NULL, NULL, NULL); |
460 | 4.32k | } |
461 | | |
462 | | unsigned long ERR_peek_last_error_line(const char **file, int *line) |
463 | 0 | { |
464 | 0 | return get_error_values(EV_PEEK_LAST, file, line, NULL, NULL, NULL); |
465 | 0 | } |
466 | | |
467 | | unsigned long ERR_peek_last_error_func(const char **func) |
468 | 0 | { |
469 | 0 | return get_error_values(EV_PEEK_LAST, NULL, NULL, func, NULL, NULL); |
470 | 0 | } |
471 | | |
472 | | unsigned long ERR_peek_last_error_data(const char **data, int *flags) |
473 | 0 | { |
474 | 0 | return get_error_values(EV_PEEK_LAST, NULL, NULL, NULL, data, flags); |
475 | 0 | } |
476 | | |
477 | | unsigned long ERR_peek_last_error_all(const char **file, int *line, |
478 | | const char **func, |
479 | | const char **data, int *flags) |
480 | 0 | { |
481 | 0 | return get_error_values(EV_PEEK_LAST, file, line, func, data, flags); |
482 | 0 | } |
483 | | |
484 | | #ifndef OPENSSL_NO_DEPRECATED_3_0 |
485 | | unsigned long ERR_peek_last_error_line_data(const char **file, int *line, |
486 | | const char **data, int *flags) |
487 | 0 | { |
488 | 0 | return get_error_values(EV_PEEK_LAST, file, line, NULL, data, flags); |
489 | 0 | } |
490 | | #endif |
491 | | |
492 | | static unsigned long get_error_values(ERR_GET_ACTION g, |
493 | | const char **file, int *line, |
494 | | const char **func, |
495 | | const char **data, int *flags) |
496 | 101k | { |
497 | 101k | int i = 0; |
498 | 101k | ERR_STATE *es; |
499 | 101k | unsigned long ret; |
500 | | |
501 | 101k | es = err_get_state_int(); |
502 | 101k | if (es == NULL) |
503 | 0 | return 0; |
504 | | |
505 | | /* |
506 | | * Clear anything that should have been cleared earlier. We do this |
507 | | * here because this doesn't have constant-time issues. |
508 | | */ |
509 | 101k | while (es->bottom != es->top) { |
510 | 78.3k | if (es->err_flags[es->top] & ERR_FLAG_CLEAR) { |
511 | 0 | err_clear(es, es->top, 0); |
512 | 0 | es->top = es->top > 0 ? es->top - 1 : ERR_NUM_ERRORS - 1; |
513 | 0 | continue; |
514 | 0 | } |
515 | 78.3k | i = (es->bottom + 1) % ERR_NUM_ERRORS; |
516 | 78.3k | if (es->err_flags[i] & ERR_FLAG_CLEAR) { |
517 | 0 | es->bottom = i; |
518 | 0 | err_clear(es, es->bottom, 0); |
519 | 0 | continue; |
520 | 0 | } |
521 | 78.3k | break; |
522 | 78.3k | } |
523 | | |
524 | | /* If everything has been cleared, the stack is empty. */ |
525 | 101k | if (es->bottom == es->top) |
526 | 22.7k | return 0; |
527 | | |
528 | | /* Which error, the top of stack (latest one) or the first one? */ |
529 | 78.3k | if (g == EV_PEEK_LAST) |
530 | 4.32k | i = es->top; |
531 | 74.0k | else |
532 | 74.0k | i = (es->bottom + 1) % ERR_NUM_ERRORS; |
533 | | |
534 | 78.3k | ret = es->err_buffer[i]; |
535 | 78.3k | if (g == EV_POP) { |
536 | 74.0k | es->bottom = i; |
537 | 74.0k | es->err_buffer[i] = 0; |
538 | 74.0k | } |
539 | | |
540 | 78.3k | if (file != NULL) { |
541 | 74.0k | *file = es->err_file[i]; |
542 | 74.0k | if (*file == NULL) |
543 | 0 | *file = ""; |
544 | 74.0k | } |
545 | 78.3k | if (line != NULL) |
546 | 74.0k | *line = es->err_line[i]; |
547 | 78.3k | if (func != NULL) { |
548 | 74.0k | *func = es->err_func[i]; |
549 | 74.0k | if (*func == NULL) |
550 | 0 | *func = ""; |
551 | 74.0k | } |
552 | 78.3k | if (flags != NULL) |
553 | 74.0k | *flags = es->err_data_flags[i]; |
554 | 78.3k | if (data == NULL) { |
555 | 4.32k | if (g == EV_POP) { |
556 | 0 | err_clear_data(es, i, 0); |
557 | 0 | } |
558 | 74.0k | } else { |
559 | 74.0k | *data = es->err_data[i]; |
560 | 74.0k | if (*data == NULL) { |
561 | 1.14k | *data = ""; |
562 | 1.14k | if (flags != NULL) |
563 | 1.14k | *flags = 0; |
564 | 1.14k | } |
565 | 74.0k | } |
566 | 78.3k | return ret; |
567 | 101k | } |
568 | | |
569 | | void ERR_error_string_n(unsigned long e, char *buf, size_t len) |
570 | 0 | { |
571 | 0 | char lsbuf[64], rsbuf[64]; |
572 | 0 | const char *ls, *rs; |
573 | 0 | unsigned long f = 0, l, r; |
574 | |
|
575 | 0 | if (len == 0) |
576 | 0 | return; |
577 | | |
578 | 0 | l = ERR_GET_LIB(e); |
579 | 0 | ls = ERR_lib_error_string(e); |
580 | 0 | if (ls == NULL) { |
581 | 0 | BIO_snprintf(lsbuf, sizeof(lsbuf), "lib(%lu)", l); |
582 | 0 | ls = lsbuf; |
583 | 0 | } |
584 | |
|
585 | 0 | rs = ERR_reason_error_string(e); |
586 | 0 | r = ERR_GET_REASON(e); |
587 | 0 | if (rs == NULL) { |
588 | 0 | BIO_snprintf(rsbuf, sizeof(rsbuf), "reason(%lu)", r); |
589 | 0 | rs = rsbuf; |
590 | 0 | } |
591 | |
|
592 | 0 | BIO_snprintf(buf, len, "error:%08lX:%s:%s:%s", e, ls, "", rs); |
593 | 0 | if (strlen(buf) == len - 1) { |
594 | | /* Didn't fit; use a minimal format. */ |
595 | 0 | BIO_snprintf(buf, len, "err:%lx:%lx:%lx:%lx", e, l, f, r); |
596 | 0 | } |
597 | 0 | } |
598 | | |
599 | | /* |
600 | | * ERR_error_string_n should be used instead for ret != NULL as |
601 | | * ERR_error_string cannot know how large the buffer is |
602 | | */ |
603 | | char *ERR_error_string(unsigned long e, char *ret) |
604 | 0 | { |
605 | 0 | static char buf[256]; |
606 | |
|
607 | 0 | if (ret == NULL) |
608 | 0 | ret = buf; |
609 | 0 | ERR_error_string_n(e, ret, (int)sizeof(buf)); |
610 | 0 | return ret; |
611 | 0 | } |
612 | | |
613 | | const char *ERR_lib_error_string(unsigned long e) |
614 | 74.0k | { |
615 | 74.0k | ERR_STRING_DATA d, *p; |
616 | 74.0k | unsigned long l; |
617 | | |
618 | 74.0k | if (!RUN_ONCE(&err_string_init, do_err_strings_init)) { |
619 | 0 | return NULL; |
620 | 0 | } |
621 | | |
622 | 74.0k | l = ERR_GET_LIB(e); |
623 | 74.0k | d.error = ERR_PACK(l, 0, 0); |
624 | 74.0k | p = int_err_get_item(&d); |
625 | 74.0k | return ((p == NULL) ? NULL : p->string); |
626 | 74.0k | } |
627 | | |
628 | | #ifndef OPENSSL_NO_DEPRECATED_3_0 |
629 | | const char *ERR_func_error_string(unsigned long e) |
630 | 0 | { |
631 | 0 | return NULL; |
632 | 0 | } |
633 | | #endif |
634 | | |
635 | | const char *ERR_reason_error_string(unsigned long e) |
636 | 163k | { |
637 | 163k | ERR_STRING_DATA d, *p = NULL; |
638 | 163k | unsigned long l, r; |
639 | | |
640 | 163k | if (!RUN_ONCE(&err_string_init, do_err_strings_init)) { |
641 | 0 | return NULL; |
642 | 0 | } |
643 | | |
644 | 163k | l = ERR_GET_LIB(e); |
645 | 163k | r = ERR_GET_REASON(e); |
646 | 163k | d.error = ERR_PACK(l, 0, r); |
647 | 163k | p = int_err_get_item(&d); |
648 | 163k | if (p == NULL) { |
649 | 109k | d.error = ERR_PACK(0, 0, r); |
650 | 109k | p = int_err_get_item(&d); |
651 | 109k | } |
652 | 163k | return ((p == NULL) ? NULL : p->string); |
653 | 163k | } |
654 | | |
655 | | /* TODO(3.0): arg ignored for now */ |
656 | | static void err_delete_thread_state(void *arg) |
657 | 1.36k | { |
658 | 1.36k | ERR_STATE *state = CRYPTO_THREAD_get_local(&err_thread_local); |
659 | 1.36k | if (state == NULL) |
660 | 0 | return; |
661 | | |
662 | 1.36k | CRYPTO_THREAD_set_local(&err_thread_local, NULL); |
663 | 1.36k | ERR_STATE_free(state); |
664 | 1.36k | } |
665 | | |
666 | | #ifndef OPENSSL_NO_DEPRECATED_1_1_0 |
667 | | void ERR_remove_thread_state(void *dummy) |
668 | 0 | { |
669 | 0 | } |
670 | | #endif |
671 | | |
672 | | #ifndef OPENSSL_NO_DEPRECATED_1_0_0 |
673 | | void ERR_remove_state(unsigned long pid) |
674 | 0 | { |
675 | 0 | } |
676 | | #endif |
677 | | |
678 | | DEFINE_RUN_ONCE_STATIC(err_do_init) |
679 | 2.72k | { |
680 | 2.72k | set_err_thread_local = 1; |
681 | 2.72k | return CRYPTO_THREAD_init_local(&err_thread_local, NULL); |
682 | 2.72k | } |
683 | | |
684 | | ERR_STATE *err_get_state_int(void) |
685 | 6.84M | { |
686 | 6.84M | ERR_STATE *state; |
687 | 6.84M | int saveerrno = get_last_sys_error(); |
688 | | |
689 | 6.84M | if (!OPENSSL_init_crypto(OPENSSL_INIT_BASE_ONLY, NULL)) |
690 | 0 | return NULL; |
691 | | |
692 | 6.84M | if (!RUN_ONCE(&err_init, err_do_init)) |
693 | 0 | return NULL; |
694 | | |
695 | 6.84M | state = CRYPTO_THREAD_get_local(&err_thread_local); |
696 | 6.84M | if (state == (ERR_STATE*)-1) |
697 | 0 | return NULL; |
698 | | |
699 | 6.84M | if (state == NULL) { |
700 | 2.72k | if (!CRYPTO_THREAD_set_local(&err_thread_local, (ERR_STATE*)-1)) |
701 | 0 | return NULL; |
702 | | |
703 | 2.72k | if ((state = OPENSSL_zalloc(sizeof(*state))) == NULL) { |
704 | 0 | CRYPTO_THREAD_set_local(&err_thread_local, NULL); |
705 | 0 | return NULL; |
706 | 0 | } |
707 | | |
708 | 2.72k | if (!ossl_init_thread_start(NULL, NULL, err_delete_thread_state) |
709 | 2.72k | || !CRYPTO_THREAD_set_local(&err_thread_local, state)) { |
710 | 0 | ERR_STATE_free(state); |
711 | 0 | CRYPTO_THREAD_set_local(&err_thread_local, NULL); |
712 | 0 | return NULL; |
713 | 0 | } |
714 | | |
715 | | /* Ignore failures from these */ |
716 | 2.72k | OPENSSL_init_crypto(OPENSSL_INIT_LOAD_CRYPTO_STRINGS, NULL); |
717 | 2.72k | } |
718 | | |
719 | 6.84M | set_sys_error(saveerrno); |
720 | 6.84M | return state; |
721 | 6.84M | } |
722 | | |
723 | | #ifndef OPENSSL_NO_DEPRECATED_3_0 |
724 | | ERR_STATE *ERR_get_state(void) |
725 | 0 | { |
726 | 0 | return err_get_state_int(); |
727 | 0 | } |
728 | | #endif |
729 | | |
730 | | |
731 | | /* |
732 | | * err_shelve_state returns the current thread local error state |
733 | | * and freezes the error module until err_unshelve_state is called. |
734 | | */ |
735 | | int err_shelve_state(void **state) |
736 | 0 | { |
737 | 0 | int saveerrno = get_last_sys_error(); |
738 | | |
739 | | /* |
740 | | * Note, at present our only caller is OPENSSL_init_crypto(), indirectly |
741 | | * via ossl_init_load_crypto_nodelete(), by which point the requested |
742 | | * "base" initialization has already been performed, so the below call is a |
743 | | * NOOP, that re-enters OPENSSL_init_crypto() only to quickly return. |
744 | | * |
745 | | * If are no other valid callers of this function, the call below can be |
746 | | * removed, avoiding the re-entry into OPENSSL_init_crypto(). If there are |
747 | | * potential uses that are not from inside OPENSSL_init_crypto(), then this |
748 | | * call is needed, but some care is required to make sure that the re-entry |
749 | | * remains a NOOP. |
750 | | */ |
751 | 0 | if (!OPENSSL_init_crypto(OPENSSL_INIT_BASE_ONLY, NULL)) |
752 | 0 | return 0; |
753 | | |
754 | 0 | if (!RUN_ONCE(&err_init, err_do_init)) |
755 | 0 | return 0; |
756 | | |
757 | 0 | *state = CRYPTO_THREAD_get_local(&err_thread_local); |
758 | 0 | if (!CRYPTO_THREAD_set_local(&err_thread_local, (ERR_STATE*)-1)) |
759 | 0 | return 0; |
760 | | |
761 | 0 | set_sys_error(saveerrno); |
762 | 0 | return 1; |
763 | 0 | } |
764 | | |
765 | | /* |
766 | | * err_unshelve_state restores the error state that was returned |
767 | | * by err_shelve_state previously. |
768 | | */ |
769 | | void err_unshelve_state(void* state) |
770 | 0 | { |
771 | 0 | if (state != (void*)-1) |
772 | 0 | CRYPTO_THREAD_set_local(&err_thread_local, (ERR_STATE*)state); |
773 | 0 | } |
774 | | |
775 | | int ERR_get_next_error_library(void) |
776 | 0 | { |
777 | 0 | int ret; |
778 | |
|
779 | 0 | if (!RUN_ONCE(&err_string_init, do_err_strings_init)) |
780 | 0 | return 0; |
781 | | |
782 | 0 | CRYPTO_THREAD_write_lock(err_string_lock); |
783 | 0 | ret = int_err_library_number++; |
784 | 0 | CRYPTO_THREAD_unlock(err_string_lock); |
785 | 0 | return ret; |
786 | 0 | } |
787 | | |
788 | | static int err_set_error_data_int(char *data, size_t size, int flags, |
789 | | int deallocate) |
790 | 611k | { |
791 | 611k | ERR_STATE *es; |
792 | | |
793 | 611k | es = err_get_state_int(); |
794 | 611k | if (es == NULL) |
795 | 0 | return 0; |
796 | | |
797 | 611k | err_clear_data(es, es->top, deallocate); |
798 | 611k | err_set_data(es, es->top, data, size, flags); |
799 | | |
800 | 611k | return 1; |
801 | 611k | } |
802 | | |
803 | | void ERR_set_error_data(char *data, int flags) |
804 | 0 | { |
805 | | /* |
806 | | * This function is void so we cannot propagate the error return. Since it |
807 | | * is also in the public API we can't change the return type. |
808 | | * |
809 | | * We estimate the size of the data. If it's not flagged as allocated, |
810 | | * then this is safe, and if it is flagged as allocated, then our size |
811 | | * may be smaller than the actual allocation, but that doesn't matter |
812 | | * too much, the buffer will remain untouched or will eventually be |
813 | | * reallocated to a new size. |
814 | | * |
815 | | * callers should be advised that this function takes over ownership of |
816 | | * the allocated memory, i.e. they can't count on the pointer to remain |
817 | | * valid. |
818 | | */ |
819 | 0 | err_set_error_data_int(data, strlen(data) + 1, flags, 1); |
820 | 0 | } |
821 | | |
822 | | void ERR_add_error_data(int num, ...) |
823 | 611k | { |
824 | 611k | va_list args; |
825 | 611k | va_start(args, num); |
826 | 611k | ERR_add_error_vdata(num, args); |
827 | 611k | va_end(args); |
828 | 611k | } |
829 | | |
830 | | void ERR_add_error_vdata(int num, va_list args) |
831 | 611k | { |
832 | 611k | int i, len, size; |
833 | 611k | int flags = ERR_TXT_MALLOCED | ERR_TXT_STRING; |
834 | 611k | char *str, *arg; |
835 | 611k | ERR_STATE *es; |
836 | | |
837 | | /* Get the current error data; if an allocated string get it. */ |
838 | 611k | es = err_get_state_int(); |
839 | 611k | if (es == NULL) |
840 | 0 | return; |
841 | 611k | i = es->top; |
842 | | |
843 | | /* |
844 | | * If err_data is allocated already, re-use the space. |
845 | | * Otherwise, allocate a small new buffer. |
846 | | */ |
847 | 611k | if ((es->err_data_flags[i] & flags) == flags) { |
848 | 606k | str = es->err_data[i]; |
849 | 606k | size = es->err_data_size[i]; |
850 | | |
851 | | /* |
852 | | * To protect the string we just grabbed from tampering by other |
853 | | * functions we may call, or to protect them from freeing a pointer |
854 | | * that may no longer be valid at that point, we clear away the |
855 | | * data pointer and the flags. We will set them again at the end |
856 | | * of this function. |
857 | | */ |
858 | 606k | es->err_data[i] = NULL; |
859 | 606k | es->err_data_flags[i] = 0; |
860 | 606k | } else if ((str = OPENSSL_malloc(size = 81)) == NULL) { |
861 | 0 | return; |
862 | 4.78k | } else { |
863 | 4.78k | str[0] = '\0'; |
864 | 4.78k | } |
865 | 611k | len = strlen(str); |
866 | | |
867 | 2.79M | while (--num >= 0) { |
868 | 2.18M | arg = va_arg(args, char *); |
869 | 2.18M | if (arg == NULL) |
870 | 0 | arg = "<NULL>"; |
871 | 2.18M | len += strlen(arg); |
872 | 2.18M | if (len >= size) { |
873 | 63 | char *p; |
874 | | |
875 | 63 | size = len + 20; |
876 | 63 | p = OPENSSL_realloc(str, size); |
877 | 63 | if (p == NULL) { |
878 | 0 | OPENSSL_free(str); |
879 | 0 | return; |
880 | 0 | } |
881 | 63 | str = p; |
882 | 63 | } |
883 | 2.18M | OPENSSL_strlcat(str, arg, (size_t)size); |
884 | 2.18M | } |
885 | 611k | if (!err_set_error_data_int(str, size, flags, 0)) |
886 | 0 | OPENSSL_free(str); |
887 | 611k | } |
888 | | |
889 | | int ERR_set_mark(void) |
890 | 65.2k | { |
891 | 65.2k | ERR_STATE *es; |
892 | | |
893 | 65.2k | es = err_get_state_int(); |
894 | 65.2k | if (es == NULL) |
895 | 0 | return 0; |
896 | | |
897 | 65.2k | if (es->bottom == es->top) |
898 | 65.1k | return 0; |
899 | 30 | es->err_flags[es->top] |= ERR_FLAG_MARK; |
900 | 30 | return 1; |
901 | 65.2k | } |
902 | | |
903 | | int ERR_pop_to_mark(void) |
904 | 65.2k | { |
905 | 65.2k | ERR_STATE *es; |
906 | | |
907 | 65.2k | es = err_get_state_int(); |
908 | 65.2k | if (es == NULL) |
909 | 0 | return 0; |
910 | | |
911 | 168k | while (es->bottom != es->top |
912 | 168k | && (es->err_flags[es->top] & ERR_FLAG_MARK) == 0) { |
913 | 103k | err_clear(es, es->top, 0); |
914 | 103k | es->top = es->top > 0 ? es->top - 1 : ERR_NUM_ERRORS - 1; |
915 | 103k | } |
916 | | |
917 | 65.2k | if (es->bottom == es->top) |
918 | 65.1k | return 0; |
919 | 30 | es->err_flags[es->top] &= ~ERR_FLAG_MARK; |
920 | 30 | return 1; |
921 | 65.2k | } |
922 | | |
923 | | int ERR_clear_last_mark(void) |
924 | 0 | { |
925 | 0 | ERR_STATE *es; |
926 | 0 | int top; |
927 | |
|
928 | 0 | es = err_get_state_int(); |
929 | 0 | if (es == NULL) |
930 | 0 | return 0; |
931 | | |
932 | 0 | top = es->top; |
933 | 0 | while (es->bottom != top |
934 | 0 | && (es->err_flags[top] & ERR_FLAG_MARK) == 0) { |
935 | 0 | top = top > 0 ? top - 1 : ERR_NUM_ERRORS - 1; |
936 | 0 | } |
937 | |
|
938 | 0 | if (es->bottom == top) |
939 | 0 | return 0; |
940 | 0 | es->err_flags[top] &= ~ERR_FLAG_MARK; |
941 | 0 | return 1; |
942 | 0 | } |
943 | | |
944 | | void err_clear_last_constant_time(int clear) |
945 | 0 | { |
946 | 0 | ERR_STATE *es; |
947 | 0 | int top; |
948 | |
|
949 | 0 | es = err_get_state_int(); |
950 | 0 | if (es == NULL) |
951 | 0 | return; |
952 | | |
953 | 0 | top = es->top; |
954 | | |
955 | | /* |
956 | | * Flag error as cleared but remove it elsewhere to avoid two errors |
957 | | * accessing the same error stack location, revealing timing information. |
958 | | */ |
959 | 0 | clear = constant_time_select_int(constant_time_eq_int(clear, 0), |
960 | 0 | 0, ERR_FLAG_CLEAR); |
961 | 0 | es->err_flags[top] |= clear; |
962 | 0 | } |